d31e3b3941bb7517ec684f45babc3ecfb38ac0a14787b60f99d0bdf233261b01 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

6c8be8830966ad135041b6e5237224e0_NeikiAnalytics.exe
Size

172KB
Sample

240524-rsx8hahd75
MD5

6c8be8830966ad135041b6e5237224e0
SHA1

faa89240dfcb39211b096c74d1a8006da0906341
SHA256

d31e3b3941bb7517ec684f45babc3ecfb38ac0a14787b60f99d0bdf233261b01
SHA512

d5d507a9e97b09214c530b3a9da3ed93b3a3631a858ff1aabdecb442f7ad70a4354a31966d04a8715ce6f211fe280979df51a6c7194e3b6565e30e8b4051c3e9
SSDEEP

3072:fftffjmNtAHaqQzTh+Ej7EZnD3XpTeCZbZvk+46eyemcr3i:HVfjmNtihQzTwcYHdeC0qef7y

Score

7^/10

Malware Config

Targets

- Target
  
  6c8be8830966ad135041b6e5237224e0_NeikiAnalytics.exe
- Size
  
  172KB
- MD5
  
  6c8be8830966ad135041b6e5237224e0
- SHA1
  
  faa89240dfcb39211b096c74d1a8006da0906341
- SHA256
  
  d31e3b3941bb7517ec684f45babc3ecfb38ac0a14787b60f99d0bdf233261b01
- SHA512
  
  d5d507a9e97b09214c530b3a9da3ed93b3a3631a858ff1aabdecb442f7ad70a4354a31966d04a8715ce6f211fe280979df51a6c7194e3b6565e30e8b4051c3e9
- SSDEEP
  
  3072:fftffjmNtAHaqQzTh+Ej7EZnD3XpTeCZbZvk+46eyemcr3i:HVfjmNtihQzTwcYHdeC0qef7y
Score

7^/10
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
- Enumerates connected drives
  Attempts to read the root path of hard drives other than the default C: drive.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2